CloudTrail

---

Resource Icon

Resource Overview

AWS CloudTrail enables monitoring of AWS deployments in the cloud by retrieving records of AWS API calls made on your account, including calls made through the AWS Management Console, AWS SDKs, command line tools, and higher-level AWS services. It allows you to identify which users and accounts called AWS APIs supported by CloudTrail, the source IP addresses from which calls were made, and the time at which calls occurred. You can integrate CloudTrail into applications using APIs, automate trail creation for organizations, check trail status, and control how administrators enable and disable CloudTrail logging.

Associated Resources

Parent Resources

• Region

Connected Resources

• S3Bucket

---

Resource Configuration

Basic Settings

• linked_s3_bucket_name : Name of the S3 Bucket used to store CloudTrail log files
• s3_key_prefix : S3 object key prefix used when storing log files
• multi_region_enabled : Whether multi-region trails are enabled - true, false
• global_service_events : Whether to include global service events such as IAM in logs - true, false

Tags

• tag : Tags used to categorize the resource

---

References

• Amazon CloudTrail(AWS)
• Amazon CloudTrail Pricing(AWS)
• Amazon CloudTrail(Terraform)